Ubuntu: (Multiple Advisories) (CVE-2024-35905): Linux kernel vulnerabilities

发布于3月6日3月6日

Members

Ubuntu: (Multiple Advisories) (CVE-2024-35905): Linux kernel vulnerabilities

Severity

CVSS

(AV:L/AC:L/Au:S/C:C/I:C/A:C)

Published

05/19/2024

Created

07/12/2024

Added

07/12/2024

Modified

01/28/2025

Description

In the Linux kernel, the following vulnerability has been resolved: bpf: Protect against int overflow for stack access size This patch re-introduces protection against the size of access to stack memory being negative; the access size can appear negative as a result of overflowing its signed int representation. This should not actually happen, as there are other protections along the way, but we should protect against it anyway. One code path was missing such protections (fixed in the previous patch in the series), causing out-of-bounds array accesses in check_stack_range_initialized(). This patch causes the verification of a program with such a non-sensical access size to fail. This check used to exist in a more indirect way, but was inadvertendly removed in a833a17aeac7.

Solution(s)

ubuntu-upgrade-linux-image-5-15-0-1035-xilinx-zynqmp
ubuntu-upgrade-linux-image-5-15-0-1048-gkeop
ubuntu-upgrade-linux-image-5-15-0-1058-ibm
ubuntu-upgrade-linux-image-5-15-0-1058-raspi
ubuntu-upgrade-linux-image-5-15-0-1060-intel-iotg
ubuntu-upgrade-linux-image-5-15-0-1060-nvidia
ubuntu-upgrade-linux-image-5-15-0-1060-nvidia-lowlatency
ubuntu-upgrade-linux-image-5-15-0-1062-gke
ubuntu-upgrade-linux-image-5-15-0-1062-kvm
ubuntu-upgrade-linux-image-5-15-0-1063-oracle
ubuntu-upgrade-linux-image-5-15-0-1064-gcp
ubuntu-upgrade-linux-image-5-15-0-1065-aws
ubuntu-upgrade-linux-image-5-15-0-1065-gcp
ubuntu-upgrade-linux-image-5-15-0-1068-azure
ubuntu-upgrade-linux-image-5-15-0-1068-azure-fde
ubuntu-upgrade-linux-image-5-15-0-116-generic
ubuntu-upgrade-linux-image-5-15-0-116-generic-64k
ubuntu-upgrade-linux-image-5-15-0-116-generic-lpae
ubuntu-upgrade-linux-image-5-15-0-116-lowlatency
ubuntu-upgrade-linux-image-5-15-0-116-lowlatency-64k
ubuntu-upgrade-linux-image-6-8-0-1006-gke
ubuntu-upgrade-linux-image-6-8-0-1007-intel
ubuntu-upgrade-linux-image-6-8-0-1007-raspi
ubuntu-upgrade-linux-image-6-8-0-1008-ibm
ubuntu-upgrade-linux-image-6-8-0-1008-oem
ubuntu-upgrade-linux-image-6-8-0-1008-oracle
ubuntu-upgrade-linux-image-6-8-0-1008-oracle-64k
ubuntu-upgrade-linux-image-6-8-0-1009-nvidia
ubuntu-upgrade-linux-image-6-8-0-1009-nvidia-64k
ubuntu-upgrade-linux-image-6-8-0-1010-azure
ubuntu-upgrade-linux-image-6-8-0-1010-azure-fde
ubuntu-upgrade-linux-image-6-8-0-1010-gcp
ubuntu-upgrade-linux-image-6-8-0-1011-aws
ubuntu-upgrade-linux-image-6-8-0-38-generic
ubuntu-upgrade-linux-image-6-8-0-38-generic-64k
ubuntu-upgrade-linux-image-6-8-0-38-lowlatency
ubuntu-upgrade-linux-image-6-8-0-38-lowlatency-64k
ubuntu-upgrade-linux-image-aws
ubuntu-upgrade-linux-image-aws-lts-22-04
ubuntu-upgrade-linux-image-azure
ubuntu-upgrade-linux-image-azure-cvm
ubuntu-upgrade-linux-image-azure-fde
ubuntu-upgrade-linux-image-azure-fde-lts-22-04
ubuntu-upgrade-linux-image-azure-lts-22-04
ubuntu-upgrade-linux-image-gcp
ubuntu-upgrade-linux-image-gcp-lts-22-04
ubuntu-upgrade-linux-image-generic
ubuntu-upgrade-linux-image-generic-64k
ubuntu-upgrade-linux-image-generic-64k-hwe-20-04
ubuntu-upgrade-linux-image-generic-64k-hwe-24-04
ubuntu-upgrade-linux-image-generic-hwe-20-04
ubuntu-upgrade-linux-image-generic-hwe-24-04
ubuntu-upgrade-linux-image-generic-lpae
ubuntu-upgrade-linux-image-generic-lpae-hwe-20-04
ubuntu-upgrade-linux-image-gke
ubuntu-upgrade-linux-image-gke-5-15
ubuntu-upgrade-linux-image-gkeop
ubuntu-upgrade-linux-image-gkeop-5-15
ubuntu-upgrade-linux-image-ibm
ubuntu-upgrade-linux-image-ibm-classic
ubuntu-upgrade-linux-image-ibm-lts-24-04
ubuntu-upgrade-linux-image-intel
ubuntu-upgrade-linux-image-intel-iotg
ubuntu-upgrade-linux-image-kvm
ubuntu-upgrade-linux-image-lowlatency
ubuntu-upgrade-linux-image-lowlatency-64k
ubuntu-upgrade-linux-image-lowlatency-64k-hwe-20-04
ubuntu-upgrade-linux-image-lowlatency-hwe-20-04
ubuntu-upgrade-linux-image-nvidia
ubuntu-upgrade-linux-image-nvidia-64k
ubuntu-upgrade-linux-image-nvidia-lowlatency
ubuntu-upgrade-linux-image-oem-20-04
ubuntu-upgrade-linux-image-oem-20-04b
ubuntu-upgrade-linux-image-oem-20-04c
ubuntu-upgrade-linux-image-oem-20-04d
ubuntu-upgrade-linux-image-oem-24-04
ubuntu-upgrade-linux-image-oem-24-04a
ubuntu-upgrade-linux-image-oracle
ubuntu-upgrade-linux-image-oracle-64k
ubuntu-upgrade-linux-image-oracle-lts-22-04
ubuntu-upgrade-linux-image-raspi
ubuntu-upgrade-linux-image-raspi-nolpae
ubuntu-upgrade-linux-image-virtual
ubuntu-upgrade-linux-image-virtual-hwe-20-04
ubuntu-upgrade-linux-image-virtual-hwe-24-04
ubuntu-upgrade-linux-image-xilinx-zynqmp

References

https://attackerkb.com/topics/cve-2024-35905
CVE - 2024-35905
USN-6893-1
USN-6893-2
USN-6893-3
USN-6898-1
USN-6898-2
USN-6898-3
USN-6898-4
USN-6917-1
USN-6918-1
USN-6919-1
USN-6927-1
USN-7019-1

登录

Ubuntu: (Multiple Advisories) (CVE-2024-35905): Linux kernel vulnerabilities

recommended_posts

Ubuntu: (Multiple Advisories) (CVE-2024-35905): Linux kernel vulnerabilities

Description

Solution(s)

References

欢迎来到红帽社区

社区动态

红龙逆向工具箱2025最新版(ISHACK改良版)

修改底部版权信息

ips4.7升级到5.x版本问题。

IPS Invision Community 经常自动退出登录解决

网站程序安装中文语言包时没有中文选项？Debian中文包

帐户

导航

搜索